Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1452

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2001-1452
Last Modified 05 Sep 2008 04:26:35
Published 31 Aug 2001 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-1452

Summary

By default, DNS servers on Windows NT 4.0 and Windows 2000 Server cache glue records received from non-delegated name servers, which allows remote attackers to poison the DNS cache via spoofed DNS responses.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000

  • Microsoft Windows Nt 4.0


References

CERT-VN - VU#109475

XF - nt-ms-dns-cachepollution(3675)

BID - 6791

MSKB - Q241352


Last Updated: 27 May 2016 10:36:40